Re: [cobalt-users] How secure is the Qube2 Admin Login

[jk@xxxxxxxxxxxx (Jens Kristian Søgaard)]

Balazs Nagy <bn@xxxxxxxxxxxxxx> writes:

> >         2. The RSA patent is not valid where I live. I.e. I don't
> >            break it.

> So as far as you are concerned, those who live in the US can just go to hell? Maybe
> you should start posting on a scandinavians-only@xxxxxxxxxxxxxxxxxx

Did I say that? No.

Don't start.

Americans just have to wait until September, and then the RSA patent
will be removed. Otherwise they can just buy a known-good copy of the
program...

> > manual. It's a simple use of ssh. I use for example this to connect to
> > our third nameserver (RaQ3i):

> >                 ssh -L 1234:ns3:81 ns3

> Thank you, but this will only work from Unix, or if you installed a bunch of things
> on windoze that allow you to use the command line version of the Unix client.

And?

I said the details vary from client to client. But _if_ you use the
Unix-version (and who doesn't?) then this command is the right one to
use.

I've seen a Java-port of SSH being able to open tunnels easily with a
GUI. Maybe you could go ahead and use that one on Windows instead?

Or just install Linux.

> My point was that if you want to offer secure access to the admin server to your
> clients, ssh is almost impossible. Different ssh clients have different configs,

Ofcourse. I thought we were only talking about securing access then
used by the admin-user (us).

> and some have bugs. The secure channel drops from time to time and with some
> clients you have to quit the browser, quit the client and start over.

I've never had to restart my browser/client.

> The SSL admin server from Brosoft is only $100 or so, and saves a lot of time to
> both you and your clients.

Why not just download the OpenSSL kit and modssl for Apache and
install that instead?

It will only take 30 minutes.


-- 
Jens Kristian Søgaard,
jk@xxxxxxxxxxxx -- http://www.jksoegaard.dk/
Søger du noget? -- http://www.google.com/